• info
• discussion
• exploit
• solution
• references

Ruby on Rails CVE-2013-0156 Multiple Security Vulnerabilities

Attackers can exploit these issues through a browser. To exploit the cross-site scripting issue, an attacker must entice an unsuspecting user into following a malicious URI.

The following exploits are available:

• /data/vulnerabilities/exploits/57187.rb
• /data/vulnerabilities/exploits/57187-1.rb
• /data/vulnerabilities/exploits/57187-2.rb
• /data/vulnerabilities/exploits/57187-3.rb
• /data/vulnerabilities/exploits/57187-4.rb
• /data/vulnerabilities/exploits/57187-5.rb